Are you prepared for GDPR?

We're here to arm you with the information you need to comply with this game-changing regulation. Watch this video to learn how!

On 25th May, 2018 GDPR enforcement will become a reality.

GDPR - and its stringent requirements around data privacy and security - has profound implications for organisations that hold events with EU citizens as attendees. If you haven't heard of GDPR, need a deeper understanding of the new regulation, are concerned about the severe financial penalties for GDPR non-compliance, or need to know how to prepare, Cvent is here to help.

Check out our GDPR Resources:

For Event Professionals

For Hospitality Professionals

While GDPR may look like a daunting challenge, you can turn it into an opportunity. By ensuring you have the right event management technology in place to adhere to the new regulations, you can be a standard bearer in your industry for the protection of personal information. That's something to be proud of - and something that will set your brand apart!

Cvent provides this material for informational purposes only. The material provided herein is general and in summary form and is not intended to be comprehensive. Further, it is not intended to be legal advice and should not be construed as such. Nothing herein should be relied upon or used without consulting a lawyer, data protection officer or other professional advisor who will consider your specific circumstances, possible changes to applicable laws, rules and regulations, and other legal and privacy issues. Receipt of this material does not establish an attorney-client relationship.

Cvent's Policy

For over 18 years, Cvent has been committed to protecting the privacy and security of customer and attendee information, including processes and safeguards relevant to personal data.
Cvent has implemented a very robust set of policies, procedures, and protocols in order to ensure that you and your clients' data remain safe and confidential, including using industry leading 256-bit encryption to secure all client data, both at rest and in transit, using two-factor authentication, and more. Cvent has demonstrated compliance with rigorous third-party security frameworks and standards including ISO 27001:2013, PCI DSS Level 1 and SSAE18 SOC 1 Type II. We will continue to seek additional certifications and accreditations that are important to our customers.

Another way we protect our clients, is by entering into Data Processing Agreements/Model Clauses with each of clients and sub-processors. These agreements permit our clients to continue to transfer data to Cvent without disruption and binds our sub-processors to data processing best practices. We have already implemented a new Data Processing Agreement that satisfies the GDPR requirements.

We have closely analyzed the requirements of the Privacy Shield and GDPR and are working with recognized global data privacy experts and legal counsel to renew our processes, supplement our products, and update our contracts and documentation, all in an effort to support Cvent and you with the Privacy Shield and GDPR compliance. Utilizing Cvent's size and scale, we have deployed our nearly 1,000-member tech team, with more than a dozen directly involved in information security, to deliver the Privacy Shield and GDPR compliant infrastructure on time, while continuing to meet our customer's needs. On October 31, 2017, the US Department of Commerce approved Cvent's Privacy Shield certifications. Cvent worked with TRUSTe to review and verify compliance with the EU-US and the Swiss-US Privacy Shield frameworks.

Further, Cvent will comply with the GDPR when it becomes enforceable on May 25, 2018. As we pursue compliance with the GDPR, Cvent will advise customers via established relationship and support channels of any significant changes to our products and services that may be relevant to them or impact the customer experience.